DE102006026637A1 - Method and system for filtering electronic messages - Google Patents

Abstract

Method for filtering electronic messages (e-mails), which are sent via a data line network, in particular via the Internet, from the terminal of a sender to the terminal of a recipient, the recipient being identifiable by a recipient address, with e-mails directed to the recipient pass through a spam filter, whereby the spam filter filters out e-mails addressed directly to the recipient address, and that the spam filter passes e-mails that are directed to a modified recipient address and the modification of an in the data line network checkpoint in form a function realized on a computer is legitimized.

Description

The The invention relates to a method for filtering electronic messages, such as emails, SMS or similar (in the following summary e-mails), which are transmitted via a data network, especially about the Internet, from the terminal a sender to the terminal a recipient, by a recipient address is identifiable, to be shipped. The invention also relates a system for implementing the procedure.

The number of undesirable emails received by recipients, especially e-mail messages (spam mails), is steadily increasing. For the recipient, this is dangerous because of possibly sent viruses, whereby the spam is troublesome even without viruses, since the recipient has to spend an increased amount of time and thus costs for the sifting and sorting of the e-mails. To protect the recipient from the flood of such unwanted spam, at least to some extent, statistical filters have been developed that detect spam. The known filters use one of two methods, the first, for example in the US Pat. No. 6,161,130 described method performs a search for fixed patterns, for example, typical spam mail headers or invalid sender addresses.

To The second method first divides an e-mail into sections, these sections are compared with the contents of an ever-growing database become. The comparison leads to further steps to indicate a probability to what extent the email in question is spam. This procedure is also called Bayesian procedure designated.

Of the Disadvantage of the known method is that sender of Spam their emails without big Can adjust the effort to each new filter generation and the spam unfiltered to the recipient arrives. On the other hand there is the danger with the known filters that also wanted emails sorted out and deleted become. In addition, the recipient instructed to constantly renew its filter version.

The Objects of the present invention are now a method and a system for effectively warding off spam mails, spam for short, to replace the previously known methods and the the amount of the recipient reaching spam drastically reduced, the procedure for recipients insofar is comfortable than spared them special administrative work remains.

The Tasks are performed by a method having the features of the claim 1 and a system having the features of claim 10. advantageous embodiments The invention are named in the respective subclaims.

The Invention lies in the e-mail traffic the recipient address in a certain way to modify and thus the spam filter to provide an efficient filter criterion. The spam filter then filters those emails that, like the unwanted spam, go straight to you the recipient address are directed. On the other hand lets the spam filter only emails through to those on the legitimized Way modified recipient address are directed. The modification is thereby from a centrally furnished Authority (Mail Trust Center, MTC). By the modification becomes the e-mail in a sense imprinted a signature, which can match the filter function and with which the e-mail authenticated. An unauthenticated email will be in the filter retained. Thus, the emails are addressed to the "original" and the outside world known address are "intercepted" by the filter function.

The Legitimation of the modification takes over the advantageously at a central location in the data line network integrated control body. The modification can be different Be kind. It can, for example, the complete recipient address changed become. However, such a modification is relatively difficult to handle. Especially simple and therefore advantageous it is, however, not the complete recipient address to change, but only a supplement in the form of a "token" to create that the original one Addressee address is added. To avoid compatibility issues, this must be done Be token compliant with the known standards for email addresses. A special embodiment The invention is thus that in the data line network integrated and acting as a control point computer token in the form of an addressable digital identifier generated with which the original recipient address can be modified.

Of the Filter can be as varied as well Art be realized. An important feature of the filter is it however, that he recognizes the legitimized modification. The filter or the filter function can in principle anywhere within the transmission path between sender and recipient be furnished. You just have to in advance of the issue of E-mail to the recipient work so that it does not get spam displayed. advantageously, is the filter on the server of the provider, where the user has an e-mail account realized. He can also be part of be the computer of the user's current e-mail client.

Advantageously, the filter is for a Recipient specific, ie the filter will only send e-mails addressed to the recipient and not any e-mail with legitimate tokens. The specific anti-spam token can not be used for sending to other recipients. The validity of the tokens can be limited in time, and it is also advantageous if specific tokens can be locked at any time by the recipient. With the corresponding additional functions, which can be stored as a revocation list at the control point, a central blocking of all legitimized tokens for a sender can be carried out.

Especially It is advantageous if the sender himself the opportunity gets to perform the modification by means of the token. Similar to an addressee who Stamps for buys letters to be sent and sticks these on the letters must the sender of emails in advance of such legitimizing Get token from the control office. Accordingly, only the Tokened emails from the filter function to the receiver pass through. The use of tokens is advantageous in that the issuing control body a control function in the award and not sell the tokens to each requesting sender. Thus, the acquirer becomes appropriate before receiving the (authorization) token checked by the inspection body.

For the implementation the invention is thus the control point as an intermediary between the recipient, protected against unwelcome spam would be, and the sender who has the - legitimate - wish, e-mails to ship, required. This supervisory body effectively manages the Tokens as a means of certification. If a sender is a certified Token, he can send e-mails to addressees who only use one want to receive emails containing such tokens. Insofar is for the smooth Expiration of the email traffic participation in this system one Requirement.

It may be advantageous if the tokens are issued individually and a token with attaching to an e-mail loses its value. So, a relatively large protection guaranteed against abuse. On the other hand, it can be beneficial to a trusted sender for one time to leave a copyable token, with which he his Can provide emails. The use of this "universal" token can be so far be controlled as a recipient Complain of unauthorized token spam emails at the checkpoint can, complaints may cause the token to be blocked. The number the copies made by the "universal" token can be determined by means of the filter functions, via this counting a settlement compared the sender can take place.

Advantageous in the method according to the invention is that after the issue of a token no further central instance for the communication between sender and receiver is needed. This is function of the overall system does not depend on the availability of central components dependent. The review of validity of a token can, as stated above, by the filter function, on the side of the recipient running, decentralized. It is also advantageous that no changes are required on the existing email infrastructure. So must only for every one to be protected User added a filter locally or an existing filter for the Users are set up. The model can also be used on internet Use service providers who provide such filters to their customers.

The System can be gradually established and expanded. Newly added Users and user groups (instances) can be integrated into the system be without making changes required by other users. Also, new senders who the Join system, do not generate additional effort on the receiver side. Nevertheless, a model for a sponsorship possible, where an instance is responsible for a trusted communication relationship can be used to acquire a token against payment of a lump sum. Optionally, the previous e-mail traffic can continue to receive become. The system also offers the possibility that sender versus the overall system remain anonymous. In addition, it is advantageous that the system realized low can be.

Even if only a small fee is charged per token, this will be for the operator the control body a high total turnover, as per sender for each protected receiver a token must be generated and limits the validity of the tokens can be. The operating costs are relatively low and almost independent of the number of participants.

Summarized again, the invention thus consists in the fact that first the recipient address is modified, wherein the modification is legitimized in a central location by an independent inspection body, for example the Mail Trust Center, by checking a predefinable property. The modification is then checked by a filter function upstream of the receiver, in particular at a decentralized location. The modification is advantageously done by attaching the token assigned to the sender by the control body. The sender is thus certified by the inspection body, the allocation advantageously taking place after a defined "property" of the sender has been reliably checked Token can include this property of the sender encrypted, so that the recipient of the email gets a preliminary information about the e-mail.

As a "property" can, for example the acquired right of the sender are checked to certain recipient addresses To be allowed to send e-mails. As described above, this right may be restricted in terms of time or user and with be purchased at a certain cost. The cost per e-mail to be sent can relatively low because senders of spam emails are also of low cost per individual E-mail, which will be sent in huge quantities, will put you off. Received with the token the sender has the option at least once to use a modified recipient address. Farther can be the "property" in the fulfillment of Criteria by the recipient have been established. For example, the recipient may have a Submit a list of known senders who are always token should get.

The Procedure can be performed according to the following procedure: After at least one central review of at least one of receiver specified property of a sender will result in the control body in conjunction with the address of the sender. Then becomes the communication relationship between this sender and this receiver established by the sender for this recipient address a modified recipient address, in particular in the form of the token. The sender sends the e-mail to the recipient, by typing in the email address specification modified recipient address used.

The Management of the modified recipient address can be done by the E-mail client done. Incoming e-mails will be sent to the site Receiver through the filter function assigned to it checked in this respect. There is no communication necessary with the control body. The review is thus decentralized. Upon successful verification can the modified recipient address through the regular recipient address Recipient replaced and then the e-mail will be forwarded to the recipient's e-mail server. in principle can by means of so-called white lists but also other emails through the filter function be accepted.

The invention will be described in more detail below with reference to an exemplary embodiment:
An address modification according to the invention can be implemented as follows: In this case, "local-part @ domain" is a regular e-mail address which is formed in accordance with the Requests for Comments (RFC 2822) The modified e-mail address can be the "modified "and thus be formed by" modified-localpart "@" domain "to the local part of the regular e-mail address so a special token RFC compliant can be attached.This token is about 32 characters long and can by means of a cryptographic function, eg with encode (encrypt (private_key_super, ID_sender, infolist)), where the variable "private_key_receiver" is defined as the private part of the key pair (private_key_counter, public_key_counter) associated with the recipient instance. Cryptographic methods with short key lengths are preferred, eg cryptography based on elliptic curves. For elliptic curves, a key length of 160 bits should be sufficiently secure
Encrypt is the cryptographic function. The first parameter is used as a key. Output is a bit sequence. The length depends on the cryptographic method. Encode transforms a bit sequence into a sequence of letters and numbers that is shorter by a factor of 5 and can be part of an RFC-compliant local part.

The Variable "ID sender" is defined as a Identifier for different senders take different values. It is also legal for the same Senders using different sender IDs. On the other hand, "Infolist" gives additional Information that the filter for can use the further processing of the e-mail. These include, for example the classification of the sender into a certain trust class, the expiration date of the token or the identifier of how the Sender opposite is anonymous to the Mail Trust Center.

The modified e-mail addresses are over the most already existing ones Address book of the sender e.g. managed by Outlook. It needs the user does not explicitly refer to the anti-spam tokens used access. Access is by specifying the name of the desired Receiver from Address book automatically translated into the modified recipient's e-mail address becomes. There are changes the client software is not required. However, should the modified recipient addresses be included in the address book. This can be done in popular email clients Automated by existing functions. Send to the filter function on request of the sender or the receiver modified recipient e-mail address by e-mail to the sender who will be in with a keystroke Address book can record.

The following are core essential functions of a filter function:
In a "whitelist" and the database of the filter First, it is checked whether a token is required for the desired communication relationship between transmitter and receiver. If this is not the case, the e-mail will be sent without modification. In this case, the connection is either explicitly listed in the whitelist or it is not known that the recipient is participating in the overall system.

If however, if a token is required, a check is made in the database valid Anti-spam token exists. If this is not the case, then a new anti-spam token automatically obtained from the control body and entered into the database.

The regular Recipient's e-mail address is replaced by the modified address before the e-mail is sent becomes. Eventually, database parameters will be updated.

mails with multiple receivers can divided into several e-mails and treated individually as follows: First is checked, whether the sender of the e-mail is listed in the whitelist of the database. If this is the case, the e-mail will be forwarded. Otherwise is checked, whether an anti-spam token exists. If not, a standard rejection email will be sent with information on why the e-mail was rejected and what the e-mail was Sender must be generated in order to reach the recipient. In this case, the e-mail will not be forwarded to the e-mail server of the recipient.

The Anti-spam token will follow decoded and decrypted. All Information is extracted. Because of this information will from the anti-spam proxy automatically decide whether the e-mail is sent to the e-mail server of the recipient becomes. In this case, the modified receive address is passed through the regular one Replace the receiving address and the communication relationship (sender, Anti-spam token, possibly parameters, recipients) is stored in the database filed or updated. CC recipients are treated separately. in the If rejected, an error e-mail will be sent to the sender.

Claims (10)

Method for filtering electronic messages (e-mails), which are sent via a data line network, in particular via the Internet, from the terminal of a sender to the terminal of a recipient, the recipient being identifiable by a recipient address, with e-mails directed to the recipient a spam filter, characterized in that the spam filter filters out e-mails that are addressed directly to the recipient address, and that the spam filter e-mails that are directed to a modified recipient address, the modification of a switched on in the data line network Authority is legitimized in the form of a function realized on a computer. Method according to claim 1, characterized in that that the checkpoint has an individual permission token in Form of a digital identifier generated, with the recipient address by attachment of the permission token is modified. Method according to claim 2, characterized in that that the permission token is the sender for modifying the recipient's address to disposal is provided. Method according to claim 1, characterized in that that the control body informs the consignor before making it available a permission token based on given characteristics. Method according to one of the preceding claims, characterized characterized in that the modified receiver address at least one contains a property associated with a sender. Method according to claim 5, characterized in that that the property is in the permission, at least one E-mail to the recipient too send. Method according to claim 5, characterized in that that the property is definable in the receiver Criteria, in particular the reputation of the recipient with the sender. Method according to claim 5, characterized in that that property in an authentication of the sender through an assignment computer system exists. Method according to one of the preceding claims, characterized characterized in that the modified recipient address of one in one Storage unit stored e-mail program of the computer system Recipient or by a proxy server, in particular an anti-spam proxy server, the Computer system of the receiver management, in particular, the audit of the the modified recipient address associated property includes. Method according to one of the preceding claims, characterized characterized in that, if the recipient address has been positively tested, this from the recipient's address replaced and the electronic mail at the recipient's address is forwarded.